CVE-2019-11460

An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 priorto 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer mayescape the bubblewrap sandbox used to confine thumbnailers by using theTIOCSTI ioctl to push characters into the input buffer of the thumbnailer'scontrolling terminal, allowing an attacker to escape the sandbox if thethumbnailer has a controlling terminal. This is due to improper filteringof the TIOCSTI ioctl on 64-bit systems, similar to CVE-2019-10063.